ansible/privfrontends/templates/eu/misc.Caddyfile

sl.projectsegfau.lt sl.psf.lt {
	reverse_proxy :7777
	import def
}
inv.bp.projectsegfau.lt, i.bp.psf.lt, invidious.projectsegfau.lt, inv.projectsegfau.lt, i.psf.lt {
	reverse_proxy localhost:7573
        @playback {
                path /videoplayback
                path /videoplayback/*
        }
        header @playback {
                Access-Control-Allow-Origin "*"
        }
        @jpgRedirect path_regexp maxres2 /vi/(.+)/maxres.jpg
        @thumbnailRedirect path_regexp ggpht /ggpht/(.+)
        redir @jpgRedirect /vi/{re.maxres2.1}/maxres2.jpg
        redir @thumbnailRedirect https://proxy.piped.projectsegfau.lt/{re.ggpht.1}?host=yt3.ggpht.com
        redir /vi/* https://proxy.piped.projectsegfau.lt{uri}?host=i.ytimg.com
        redir /videoplayback/* https://proxy.piped.projectsegfau.lt{uri}
        redir /videoplayback https://proxy.piped.projectsegfau.lt{uri}
	header {
		# disable FLoC tracking
		Permissions-Policy "accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), clipboard-read=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), screen-wake-lock=(), serial=(), usb=(), sync-xhr=(), xr-spatial-tracking=()";

		# enable HSTS
		Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
		# disable clients from sniffing the media type
		X-Content-Type-Options nosniff
		-Content-Security-Policy

		# keep referrer data off of HTTP connections
		Referrer-Policy no-referrer-when-downgrade

		X-XSS-Protection "1; mode=block"
		defer
	}
	import torloc invbp
	import i2ploc pjsfi2szfkb4guqzmfmlyq4no46fayertjrwt4h2uughccrh2lvq.b32.i2p
}
 piped.projectsegfau.lt proxy.piped.projectsegfau.lt api.piped.projectsegfau.lt  {
        reverse_proxy :6970
        header {
                # disable FLoC tracking
				Permissions-Policy "accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), clipboard-read=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), screen-wake-lock=(), serial=(), usb=(), sync-xhr=(), xr-spatial-tracking=()";

                # enable HSTS
                Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
                # disable clients from sniffing the media type
                X-Content-Type-Options nosniff

                # keep referrer data off of HTTP connections
                Referrer-Policy no-referrer-when-downgrade

                X-XSS-Protection "1; mode=block"
                defer
        }
		@badbots {
        	header "User-Agent" "Go-http-client/2.0"
		}
        respond @badbots "Access to this route denied" 403
		       import acmedns
		}
pi.psf.lt {
        reverse_proxy :6970 {
                header_up Host "piped.projectsegfau.lt"
        }
        header {
                # disable FLoC tracking
				Permissions-Policy "accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), clipboard-read=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), screen-wake-lock=(), serial=(), usb=(), sync-xhr=(), xr-spatial-tracking=()";

                # enable HSTS
                Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
                # disable clients from sniffing the media type
                X-Content-Type-Options nosniff

                # keep referrer data off of HTTP connections
                Referrer-Policy no-referrer-when-downgrade

                X-XSS-Protection "1; mode=block"
                defer
        }
		@badbots {
        	header "User-Agent" "Go-http-client/2.0"
		}
        respond @badbots "Access to this route denied" 403
}
proxy.lbry.projectsegfau.lt {
	reverse_proxy localhost:3001
	import def
}
aryak.me {
	reverse_proxy https://prox-arya.p.projectsegfau.lt {
		header_up Host prox-arya.p.projectsegfau.lt
	}
}
arya.projectsegfau.lt {
	redir https://aryak.me{uri}
}
## OLD URL REDIRECTS
bb.us.projectsegfau.lt bb.in.projectsegfau.lt bb.eu.projectsegfau.lt bb.projectsegfau.lt {
	import def
	import torloc beatbump
	import i2ploc pjsflmvtqax7ii44qy4ladap65c3kqspbs7h7krqy7x43uovklla.b32.i2p
	redir https://hyperpipe.projectsegfau.lt{uri}
}
invidious.mutahar.rocks {
	redir https://inv.bp.projectsegfau.lt{uri} permanent
}
ferrit.projectsegfau.lt snooddit.projectsegfau.lt libreddit.mutahar.rocks {
	redir https://libreddit.projectsegfau.lt{uri} permanent
}
lbry.mutahar.rocks {
	redir https://lbry.projectsegfau.lt{uri} permanent
}
nitter.mutahar.rocks {
	redir https://nitter.projectsegfau.lt{uri} permanent
}
#redir inv.bp.mutahar.rocks inv.bp.projectsegfau.lt permanent
#redir libreddit.mutahar.rocks libreddit.projectsegfau.lt permanent
#redir lbry.mutahar.rocks lbry.projectsegfau.lt permanent
#redir nitter.mutahar.rocks nitter.projectsegfau.lt permanent
www.midou.dev midou.dev {
#reverse_proxy https://midou36o.github.io {
#header_up Host {http.reverse_proxy.upstream.hostport} 
#}
root * /var/www/midouwebsite
file_server

import def
}